PaloAlto Firewall (EDU-260) Cortex XDR 2.0: Prevention, Analysis and Response

The Cortex XDR 2: Prevention, Analysis & Response (EDU-260) course is intended for Cybersecurity analysts and engineers, and security operations specialists. This can also include security engineers and security administrators.

Kesto: 3 päivää

Ajankohta: 3.-5.6.2024, Espoo / Online

Hinta: 2250€


Koulutuksen tarkemmat tiedot


This instructor-led training enables you to prevent attacks on your endpoints. After an overview of the Cortex XDR components, the training introduces the Cortex XDR management console and demonstrates how to install agents on your endpoints and how to create Security profiles and policies.

The training enables you to perform and track response actions, tune profiles, and work with Cortex XDR alerts. It concludes by discussing basic troubleshooting of the agent, the on-premises Broker VM component, and Cortex XDR deployment.

Successful completion of this instructor-led course with hands-on lab activities should enable you to:

  • Describe the architecture and components of the Cortex XDR family
  • Use the Cortex XDR management console, including reporting
  • Create Cortex XDR agent installation packages, endpoint groups, and policies
  • ​​​​​​​Deploy Cortex XDR agents on endpoints
  • ​​​​​​​Create and manage Exploit and Malware Prevention profiles
  • ​​​​​​​Investigate alerts and prioritize them using starring and exclusion policies
  • ​​​​​​​Tune Security profiles using Cortex XDR exceptions
  • ​​​​​​​Perform and track response actions in the Action Center
  • ​​​​​​​Perform basic troubleshooting related to Cortex XDR agents
  • ​​​​​​​Deploy a Broker VM and activate the Local Agents Settings applet
  • ​​​​​​​Understand Cortex XDR deployment concepts and activation requirements
  • ​​​​​​​Work with the Customer Support Portal and Cortex XDR Gateway for authentication and authorization

Kurssityyppi: Luentoja, laboratorioharjoituksia

Kurssikieli: Luennot suomeksi, materiaali englanniksi

Kohderyhmä: Cybersecurity analysts and engineers and security operations specialists, as well as administrators and product deployers.


Participants must be familiar with enterprise product deployment, networking, and security concepts.


  • Cortex XDR Overview
  • Cortex XDR Main Components
  • Cortex XDR Management Console
  • Profiles and Policy Rule
  • Malware Protection
  • Exploit Protection
  • Cortex XDR Alerts
  • Tuning Policies Using Exceptions
  • Response Actions
  • Basic Agent Troubleshooting
  • Broker VM Overview
  • Deployment Considerations


Exclusive Networks

PaloAlto Networks

  • PaloAlto Firewall 10.2. perusteet

    Kurssilla perehdytään Palo Alto Networksin NGFW-palomuuriratkaisuun käytännön harjoitteiden avulla. Kurssilla tehdään runsaasti laboratorioharjoituksia, jotka tehostavat oppimista. Kurssin tavoitteena on tarjota oppilaille ymmärrys Palo Alto Networksin palomuurien ominaisuuksiin sekä yleisimmin käytettyjen ratkaisujen toteutukseen

  • PaloAlto Firewall Essentials 10.2: Configuration and management (EDU-210)

    Successful completion of this five-day, instructor-led course should enhance the student’s understanding of how to configure and manage Palo Alto Networks NextGeneration Firewalls. The course includes hands-on experience configuring, managing, and monitoring a firewall in a lab environment.

  • PaloAlto Firewall 10.2: Improving security posture and hardening PAN-OS (EDU-214)

    Successful completion of this three-day, instructor-led course will assist the student in being able to manage and maintain an existing Palo Alto Networks Firewall protected environment. The student will learn how to improve non-greenfield environments and will be better equipped at ensuring configurations match security best practice.